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DETAILED ACTION 

1. This action is in response to the communication filed on 04/15/2003. Claims 1 - 
25 were received for consideration. No preliminary amendments were filed. Claims 1 - 
25 are currently being considered. 

2. — Two initialed and dated copies of Applicant's IDS form 1449 are attached to the 
Officeaction 



Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the 
United States before the invention thereof by the applicant for patent, or on an international application 
by another who has fulfilled the requirements of paragraphs (1 ), (2), and (4) of section 371 (c) of this 
title before the invention thereof by the applicant for patent. 

3. Claims 1-25 are rejected under 35 U.S.C. 102(e) as being anticipated by Diffie et 
al (U.S. Patent Number Re. 36,946). 
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Regarding Claim 1, Diffie teaches and describes a method for a first computing 
device to make authentication information available to a second computing device (Fig. 
2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 - Column 1 0 line 53), the method comprising: 

creating authentication information, the authentication information including 
content data, a public key of the first computing device, a network address of the first 
computing device, and a digital signature, the network address having a portion derived 
from the public key of the first computing device, the digital signature generated by 
signing with a private key of the first computing device corresponding to the public key, 
the digital signature generated from data in the set: the content data, a hash value of 
data including the content data; and making the authentication information available to 
the second computing device (Fig. 4a - 4c, 5a; and Column 1 line 49 - Column 2 line 
20 and Column 7 lines 6 - 45). 

Regarding Claim 12, Diffie teaches and describes a computer-readable medium 
containing instructions for performing a method for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a - 4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), the method comprising: 

creating authentication information, the authentication information including 
content data, a public key of the first computing device, a network address of the first 
computing device, and a digital signature, the network address having a portion derived 
from the public key of the first computing_device,_the_digital_signature generated by 
signing with a private key of the first computing device corresponding to the public key, 
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the digital signature generated from data in the set: the content data, a hash value of 
data including the content data; and making the authentication information available to 
the second computing device (Fig. 4a - 4c, 5a; and Column 1 line 49 - Column 2 line 
20 and Column 7 lines 6 - 45). 

Regarding Claim 13, Diffie teaches and describes a computer-readable medium 
having stored thereon a data structure (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 - 
Column 10 line 53), the data structure comprising: 

content data; a public key of a computing device; a network address of the 
computing device, the network address having a portion derived from the public key of 
the computing device; and a digital signature, the digital signature generated by signing 
with a private key of the computing device corresponding to the public key, the digital 
signature generated from data in the set: the content data, a hash value of data 
including the content data (Fig. 4a - 4c, 5a; and Column 1 line 49 - Column 2 line 20 
and Column 7 lines 6 -45). 

Regarding Claim 20, Diffie teaches and describes 20. A method for a second 
computing device to authenticate content data made available by a first computing 
device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 - Column 1 0 line 53), the method 
comprising; 

_ accessing authentication information made available by_the-first computing _ 
device, the authentication information including the content data, a public key of the first 
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computing device, a first network address of the first computing device, and a digital 
signature; deriving a portion of a second network address from the public key of the first 
computing device; validating the digital signature by using the public key of the first 
computing device; accepting the content data if the derived portion of the second 
network address matches a corresponding portion of the first network address and if the 
validating shows that the digital signature was generated from data in the set: the 
content data, a hash value of data including the content data (Fig. 4a - 4c, 5a, 5b; and 
Column 1 line 49 - Column 2 line 20 and Column 7 line 46 - Column 8 line 58), 

Regarding Claim 25, Diffie teaches and describes 25. A computer-readable 
medium containing instructions for performing a method for a second computing device 
to authenticate content data made available by a first computing device (Fig. 2, 3, 4a - 
4c, 5a, 5b; and Column 4 line 6 - Column 10 line 53), the method comprising: 

accessing authentication information made available by the first computing 
device, the authentication information including the content data, a public key of the first 
computing device, a first network address of the first computing device, and a digital 
signature; deriving a portion of a second network address from the public key of the first 
computing device; validating the digital signature by using the public key of the first 
computing device; accepting the content data if the derived portion of the second 
network address matches a corresponding portion of the first network address and if the 
validating shows that the digital signature_was_generated_from_data_in_the_set:_the 
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content data a hash value of data including the content data (Fig. 4a — 4c, 5a, 5b; and 
Column 1 line 49 - Column 2 line 20 and Column 7 line 46 - Column 8 line 58). 

Claim 2 is rejected as applied about in rejecting Claim 1. Furthermore, Diffie 
discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a -4c, 5a, 5b; and Column 4 line 6 

- Column 10 line 53), wherein the authentication information is made available to the 
second computing device by sending a message incorporating the authentication 
information to the second computing device (Column 7 lines 38 - 45). 

Claims 3 and 14 are rejected as applied about in rejecting Claims 1 and 13. 
Furthermore, Diffie discloses a method for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a - 4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), wherein the content data include data 
for updating a network communications parameter for the first computing device 
(Column 9 line 46 - Column 10 line 58). 

Claim 7 is rejected as applied about in rejecting Claim 1. Furthermore, Diffie 
discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a -4c, 5a, 5b; and Column 4 line 6 

- Column 10 line 53), wherein the public key and the private key together form an 
uncertified key pair (Column 5 line 51 - Column 6 line 7). 
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Claims 8 and 17 are rejected as applied about in rejecting Claims 1 and 13. 
Furthermore, Diffie discloses a method for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a -4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), wherein the network address of the 
first computing device includes a route prefix portion and a node-selectable portion, and 
the node-selectable portion includes a portion of a hash value of data including the 
public key of the first computing device(Column 7 lines 6 - 29). 

ClaimsTlO and 19 are rejected as applied about in rejecting Claims 1 and i3. 
Furthermore, Diffie discloses a"rfiethod for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a - 4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), wherein the authentication 
information further includes data for preventing a replay attack (Column 8 lines 12 - 58). 

Claims 4 and 15 are rejected as applied about in rejecting Claims 3 and 14. 
Furthermore, Diffie discloses a method for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a -4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), wherein the first computing device is 
a mobile device, and wherein the network communications parameter is a care-of 
address of the first computing device (Column 7 line 6-10). 
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Claims 9 and 18 are rejected as applied about in rejecting Claims 1 and 13. 
Furthermore, Diffie discloses a method for a first computing device to make 
authentication information available to a second computing device (Fig. 2, 3, 4a - 4c, 
5a, 5b; and Column 4 line 6 - Column 10 line 53), wherein the node-selectable portion 
includes a portion of a hash value of data including the public key of the first computing 
device and a modifier selected for preventing address conflicts (Column 7 lines 23 - 
45). 



Claim 1 1 is rejected as applied about in rejecting Claim 10. Furthermore, Diffie 
discloses a method for a first computing device To make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 

- Column 10 line 53), wherein the data for preventing a replay attack are in the set: time 
stamp, data identifying the second computing device as an intended recipient of the 
authentication information (Column 7 lines 6-45 and Column 8 lines 49 - 58). 

Claims 5 and 16 are rejected as applied about in rejecting Claim 4. Furthermore, 
Diffie discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 

- Column 10 line 53), wherein the second computing device is a home agent for the first 
computing device, and wherein the network address of the first computing device is a 
home address of the first computing device (Column 7 lines 6-10). 
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Claim 6 is rejected as applied about in rejecting Claim 4. Furthermore, Diffie 
discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 
- Column 10 line 53), wherein the second computing device is a correspondent of the 
first computing device, and wherein the network address of the first computing device is 
a home address of the first computing device (Column 7 lines 6-10). 



Claim 21 is rejected as applied about in rejecting Claim 20. Furthermore, Diffie. 
discloses a method for a first computing device to make authentication information 
available to a second computing device~(Fig. 2, 3, 4a- 4c, 5a, 5b; and Column 4 line~6 

- Column 10 line 53), further comprising: 

determining whether to accept the content data based on a time stamp in the 
authentication information (Column 7 lines 6-10 and Column 8 lines 1 8 - 32). 

Claim 22 is rejected as applied about in rejecting Claim 20. Furthermore, Diffie 
discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 

- Column 10 line 53), wherein the content data include data for updating a 
communications parameter for the first computing device, the method further 
comprising: 

updating a record of a communications parameter for the first computing device 
(Column 7 line 38 - Column 8 line 67). 
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Claim 24 is rejected as applied about in rejecting Claim 20. Furthermore, Diffie 
discloses a method for a first computing device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 
- Column 10 line 53), wherein the authentication information further includes a 
modifier, and wherein deriving includes appending the modifier to the public key of the 
first computing device before deriving a portion of the second network address (Column 
8 lines 7 -68). 



Claim 23 is rejected as applied about in rejecting Claim 22. Furthermore, Diffie 
discloses a method for a first computinj^device to make authentication information 
available to a second computing device (Fig. 2, 3, 4a - 4c, 5a, 5b; and Column 4 line 6 
- Column 10 line 53), wherein the communications parameter is a care-of address of 
the first computing device, and wherein updating includes updating a routing table 
maintained by the second computing device (Column 8 lines 7 - 68). 

Conclusion 

The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

Hayosh (U.S. Patent Number 6,600,823) Apparatus and Method for enhancing 
check security. 

Atkinson (U.S. Patent Number 5,511,122) Intermediate Network Authentication 
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Any response to this action should be mailed to: 

Commissioner of Patents and Trademarks, Washington, D.C. 20231 or 
faxed to: (703) 872-9306 for all formal communications. 
Hand-delivered responses should be brought to Crystal Park II, 2121 Crystal 
Drive, Arlington, VA, Fourth Floor (Receptionist). 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Pramila Parthasarathy whose telephone number is 703- 
_ 305-8912. The examiner can normally be reached on 8:00a.m. To 5:00p.m.. 
~~ If attempts to reach the examiner by telephone are unsuccessful, the examiner's^ 
supemsor, Ayaz Sheikh can ^ The fax phone number for 

the organization where this application or proceeding is assigned is 703-872-9306. 

Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the receptionist whose telephone number is 703-305- 
3900. 



Pramila Parthasarathy 
Patent Examiner 
703-305-8912 
September 8, 2004 
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